Vulnerability Details CVE-2006-6952
Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.2%
CVSS Severity
CVSS v2 Score 7.2
References
- http://secunia.com/advisories/22972
- http://www.osvdb.org/30497
- http://www.osvdb.org/30498
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=38
- http://www.securityfocus.com/archive/1/451952/100/0/threaded
- http://www.securityfocus.com/archive/1/452286/100/0/threaded
- http://www.securityfocus.com/archive/1/458040/100/200/threaded
- http://www.securityfocus.com/bid/21140
- http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97729
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34818
- http://secunia.com/advisories/22972
- http://www.osvdb.org/30497
- http://www.osvdb.org/30498
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=38
- http://www.securityfocus.com/archive/1/451952/100/0/threaded
- http://www.securityfocus.com/archive/1/452286/100/0/threaded
- http://www.securityfocus.com/archive/1/458040/100/200/threaded
- http://www.securityfocus.com/bid/21140
- http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97729
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34818
Products affected by CVE-2006-6952
-
cpe:2.3:a:ca:host-based_intrusion_prevention_system:core_6.5.4.31
-
cpe:2.3:a:ca:host-based_intrusion_prevention_system:firewall_6.5.4.10